General

  • Target

    bea0fb97dbb8a11b6f6196ff637f58c0716479af088d066e2207f372cfb550bf.exe

  • Size

    236KB

  • Sample

    241113-rqzcsatcld

  • MD5

    3ac8baaf7251c3c2c72b3e862ecdea1e

  • SHA1

    d5c07f09419914cf1ce0cb23f017eb7eaea7f0d9

  • SHA256

    bea0fb97dbb8a11b6f6196ff637f58c0716479af088d066e2207f372cfb550bf

  • SHA512

    7e27a25a58ceaf5aa0be8ebac85da18a53ebf52acdbf46ae61859b6d146292c5f9acb3d9604883c15dc69b635d93ca7cfacfa3f63e74177fd352014056e0c173

  • SSDEEP

    6144:GryKjH9+EsfB6QPTTcbe+BrC2VCKvpeeyM:6yKj/4HTy/seN

Malware Config

Targets

    • Target

      bea0fb97dbb8a11b6f6196ff637f58c0716479af088d066e2207f372cfb550bf.exe

    • Size

      236KB

    • MD5

      3ac8baaf7251c3c2c72b3e862ecdea1e

    • SHA1

      d5c07f09419914cf1ce0cb23f017eb7eaea7f0d9

    • SHA256

      bea0fb97dbb8a11b6f6196ff637f58c0716479af088d066e2207f372cfb550bf

    • SHA512

      7e27a25a58ceaf5aa0be8ebac85da18a53ebf52acdbf46ae61859b6d146292c5f9acb3d9604883c15dc69b635d93ca7cfacfa3f63e74177fd352014056e0c173

    • SSDEEP

      6144:GryKjH9+EsfB6QPTTcbe+BrC2VCKvpeeyM:6yKj/4HTy/seN

    • Detects Healer an antivirus disabler dropper

    • Healer

      Healer an antivirus disabler dropper.

    • Healer family

    • Modifies Windows Defender Real-time Protection settings

    • Windows security modification

MITRE ATT&CK Enterprise v15

Tasks